In 1998, I was studying graphic design at a small junior college in southern Colorado. I was many years from becoming a software engineer. At the time, I had a Geocities website and spent a lot of time playing with HTML.
Also, in 1998, an exploit was documented that is still active online to this day 23 years later. Why? If we know this is a method of attack, why are we not writing code that sanitizes user input? Is that all it takes to make your database safe?
In a world where everything is data, and data is more valuable than money, it seems abundantly clear that protecting the database is imperative. Let's have a conversation.
I will have John Grigg presenting online later this month (July 22) about DevSecOps, a cultural framework for building secure software. Hope you join us.